I am wondering if you need strong 1st factor (for theoretical correctness, please note it is the knowledge factor -- not necessarily a password, but definitely also includes strong passwords)?
What ...

I need to somewhere store my DB password on my production environment to access the DB. At the moment the prod system is deployed in the cloud, so is the DB.
The password, the username and some other ...

I currently store my users passwords as PBKDF2 hashes, for the authentication part of my web application.
Each user also has their own private key and public key (also stored in their user profile in ...

How secure is checking the automatic authentication option in Skype client? What if I sign in with Microsoft account instead of Skype id? What if both accounts are merged? Is there any documentation ...

What are the security concerns of the following user account setups on a normal Windows 7/8/10 desktop machine compared to: Using a non-privileged account with a password and having an admin account ...

There are some applications that generate passwords for you. Consider a case where you sign in via Facebook, the application (let's call it NEWAPP) verifies your sign in on the server using FB tokens ...

I know that Gnome-keyring hashes the master password between 1000 and 2000 times. It picks a random number. I would like to ask where it saves this number, what is the location of that file? As far as ...

I'm building a system that for reasons I'll outline below, can't used hashed passwords, but I'd still like to encrypt them so that it's as hard as possible to crack them, in the (unlikely) event the ...

To put this problem in context, I have a touch monitor screen whose firmware program is protected by a password.
The firmware program is downloaded over RS232 via a Windows utility program provided ...

I have read that Chrome will use the system's native credential tools to manage saved passwords (e.g. KeyChain on OSX, libsecret on Linux/GNOME etc). Does anyone know what tools are used on ChromeOS?
...

It appears that whenever you set up a new mail account on Mac Mail on OS X (or iPhone, iPad etc), that as soon as you enter the server and the mail account user name and password, Mac Apple-Mail tries ...

Due to very paranoid customer requirements, we have to install several Windows services on two different systems that should run under a shared service account. Each system should each have a copy of ...

I have been following this very useful post by Thomas. My use case is slightly different. I am developing a mobile application which requires some sensitive data to be stored on the device in a SQLite ...

I am using the Pyro package to create a daemon which will, upon startup, prompt for a password, and then the daemon will store that password as long as it is running. Other scripts will then make a ...

What is the cipher used by windows Credential Manager to generate credentials backup files (*.crd)?
With a backup file from Credential Manager and the password used to created that backup file is it ...

I'm very new to cracking a password so sorry if I sound stupid.
I am trying to get my admin password from my second PC (I lost it). I did find the SAM file with kali linux and with bkhive and samdump ...

I am aware of the issue of user entered pass phrases being left in memory if stored in Java Strings (due to String being immutable).
Which takes me onto using char arrays.
However, I am wondering if ...

A website that I trust (Delta Airlines) offers a link to add flight information to Google Calendar; that link opens a window asking for my Google login and password. Based on the advice in a similar ...

I am in the process of learning oclHashcat syntax. Currently, I am working on breaking a file of md5crypt strings with a dictionary file. The dictionary I am using is rockyou.txt from an installation ...